Create Next App

Exam contains 337 questions

Page 4 of 57

Question 19 🔥

You are running a vulnerability scan on a remote network and the traffic Is not making It to the target system. You investigate the connection issue and determine that the traffic is making it to the internal interface of your network firewall, but not making. It to the external Interface or to any systems outside your firewall. What is the most likely problem?

Which database solution meets these requirements?

A. Your network firewall is blocking the traffic

Highly voted

B. The NAT or pat tables on your network based firewall are filling up and droppingthe traffic

Highly voted

C. A host based firewall is blocking the traffic

Highly voted

D. Your ISP Is blocking the traffic

Highly voted

Discussion of the question

Question 20 🔥

Which of the following TCP packet sequences are common during a SYN (or half-open) scan?

Which database solution meets these requirements?

C. C and D

Highly voted

D. C and D

Highly voted

A. A,B and C

Highly voted

B. A and C

Highly voted

Discussion of the question

Question 21 🔥

Analyze the screenshot below. What type of vulnerability is being attacked?

Which database solution meets these requirements?

A. Windows Server service

Highly voted

B. Internet Explorer

Highly voted

C. Windows Powershell

Highly voted

D. Local Security Authority

Highly voted

Discussion of the question

Question 22 🔥

How can web server logs be leveraged to perform Cross-Site Scripting (XSSI?

Which database solution meets these requirements?

A. Web logs containing XSS may execute shell scripts when opened In a GUI textbrowser

Highly voted

C. If web logs are viewed in a web-based console, log entries containing XSS mayexecute on the browser.

Highly voted

D. When web logs are viewed in a terminal. XSS can escape to the shell and executecommands.

Highly voted

B. XSS attacks cause web logs to become unreadable and therefore are an effective DOS attack.

Highly voted

Discussion of the question

Question 23 🔥

What is the impact on pre-calculated Rainbow Tables of adding multiple salts to a set of passwords?

Which database solution meets these requirements?

A. Salts increases the time to crack the original password by increasing the number oftables that must be calculated.

Highly voted

B. Salts double the total size of a rainbow table database.

Highly voted

C. Salts can be reversed or removed from encoding quickly to produce unsaltedhashes.

Highly voted

D. Salts have little effect because they can be calculated on the fly with applicationssuch as Ophcrack.

Highly voted

Discussion of the question

Question 24 🔥

In the screen shot below, which selections would you need click in order to intercept and alter all http traffic passing through OWASP ZAP?

Which database solution meets these requirements?

A. Trap response and continue

Highly voted

B. Set Break and Continue

Highly voted

C. Trap request and continue

Highly voted

D. Continue and drop

Highly voted

Discussion of the question

Ready to Pass Your Certification Test

giac GPEN

Exam contains 337 questions

Lorem ipsum dolor sit amet consectetur. Eget sed turpis aenean sit aenean. Integer at nam ullamcorper a.

Company

Product

Resources

Follow us